Data Protection and Privacy Rules of the Society for Experimental Finance

(as of 15.05.2018)

(1) The SEF collects the following information about its members: academic degrees, postal address, email address, and academic affiliation (name of organization, scientific function, postal address, email address). The SEF secretary serves as the Data Protection Officer (DPO), see the current management board.

(2) These data are collected to fulfill the SEF’s legal obligations (e.g., inviting members to the general assembly) and, if the member (or applicant for membership) actively indicates the wish to receive such mailings, to provide the member with information about the SEF’s activities and news (“SEF newsletter”).

(3) The legal basis for processing these data in this way is the Austrian association law (“Vereinsgesetz”) and/or the active consent of the member concerned.

(4) The SEF will not transfer these data to organizations in countries outside of the EU.

(5) As an exception to (4), the SEF registers members’ names and email addresses with The Rocket Science Group (RSG) as a prerequisite to using RSG’s Mailchimp service to distribute mailings as laid out in section (2). Mailchimp has self-certified to both the EU-U.S. Privacy Shield and Swiss-U.S. Privacy Shield regimes, and lawfully transfers EU/EEA personal data to the U.S. pursuant to their Privacy Shield Certification.

(6) The data will be saved until a member terminates his/her membership. At all times, members can request (by email to clarification regarding the provisions in these data protection rules, can request information about the use of their data, can demand its correction, deletion or demand the implementation of limitations to how the SEF processes the data as well as whether data may be transferred to third parties. This may, however, result in termination of membership, particularly if such actions preclude the SEF from performing its legal duties.

(7) Members can, at all times and by email to, retract their consent of the SEF processing their data (insofar as the data in question is being processed on the legal basis of the member’s consent).

(8) Members will be informed of any breaches of the SEF’s security if the breach will likely have ad-verse consequences on their privacy.

(9) Members may direct complaints to the supervisory authority.

(10) The data stem from the membership application form and any updates the member may provide to the SEF regarding this information via email.

(11) The SEF does not intend to use member data for automatic decision-making, including profiling (data analysis of behavior, habits, preferences, etc.).

(12) In the future, the SEF may modify the policy outlined in these data protection rules. We therefore advise that members consult our data protection rules frequently.